CVE-2024-8169

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Aug 26, 2024
CWE ID 89

Summary

CVE-2024-8169 is a critical vulnerability affecting the Online Quiz Site 1.0, specifically within the signupuser.php file, where improper handling of the 'lid' argument allows for SQL injection attacks. This security flaw can be exploited remotely without requiring user interaction or elevated privileges, posing significant risks to confidentiality, integrity, and availability of data. Organizations utilizing affected products are urged to implement remediation strategies such as updating the software or applying patches as they become available. The vulnerability has a CVSS base score of 9.8, indicating its severe impact potential. Public disclosure of this exploit amplifies the urgency for organizations to address this vulnerability promptly to prevent potential breaches.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share